Detection Engineering Lead
NewGen Technologies•Washington, DC
About The Position
We are looking for a Detection Engineering Lead for potential upcoming work. This would be part of an opportunity for our Partner to expand their footprint within a Federal IT sector.
Requirements
- US Citizenship
- Ability to obtain a Public Trust Clearance
- OSCP or GXPN
- 5 years within IR in a large SOC (over 5,000 endpoints) with at least 3 years focused on proactive detection engineering, threat hunt, or adversary emulation
- 3 years of experience with demonstrated proficiency in forming hypothesis, querying large datasets and identifying APT behavior
- 2 years' experience with demonstrated proficiency in scripting languages including Python and PowerShell to develop new tools
- 2 years' experience with demonstrated proficiency developing detections in a SIEM (utilizing Splunk ES or Microsoft Sentinel)
Responsibilities
- Forming hypothesis
- Querying large datasets
- Identifying APT behavior
- Developing new tools using scripting languages
- Developing detections in a SIEM
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
